Analysis of Risks against Web Applications in MVC

Pariwish Touseef , Moeez Ameer Ashraf, Ammar Rafiq

Abstract

In this era of internet web security is the main issue. The internet growth led the web crimes to increase. The enhancement of new architectures makes the web application prone to security risks. Now a day’s Model View Controller Architecture is very well known name for web application development. It could be a very good solution for rapid application development. This model can be implemented in PHP and ASP.Net. With comparison of both languages regarding their performance, time, and memory our findings show that ASP.Net is better than PHP framework. But there are several security risks that exploit the Model View Controller Architecture. The Open Web Application Security Project identifies common types of risks a typical architecture can expect. Researchers are paramount to secure the websites. Hence security have become major concern and researchers have developed various security detection and prevention approaches. This paper provides the overview of the web applications developed in Model View Controller Architecture using ASP.Net or PHP with common web applications risks that are used to tamper systems assets and possible solutions to secure them. It also proposes the further possibilities to develop a security model in Model View Controller ASP.Net for the protection of sensitive data exposure risk.